High-signal frontier AI context tagged with security.
Anthropic tightened Fable's guardrails to prevent misuse, but they also refuse legitimate defensive work like reading a blog or doing a code review. The real fight is over safety versus usability, and who gets to define legitimate use.
Read analysisblue41 helped bunq, Europe's second-largest digital bank, fix an indirect prompt injection in its financial AI assistant: a tiny transfer with instructions hidden in the description could turn the assistant into a phishing channel. The real lesson is tool permissions, confirmation gates, and treating external data as untrusted input.
Read analysisAttackers reset passwords on accounts without two-factor by simply asking Meta's AI support bot to send the code to a different email. When AI plugs into your account system, it becomes a new path around authentication.
Read analysisMicrosoft pulled 70+ GitHub repos after attackers injected credential-stealing malware into Azure and AI coding tools. Here's what builders should actually change.
Read analysisLockdown Mode is built for journalists, dissidents, and other high-risk users. The subtext is that OpenAI concedes its default config is not safe enough for them, pushing product safety from model alignment into user-side threat modeling.
Read analysis